SECUI Corporation


	Korean

<< Back

VID	26827
Severity	40
Port	139,445
Protocol	TCP
Class	SMB
Detailed Description	Microsoft Security Update for February 2019 is not installed. - A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests. (CVE-2019-0630) - An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. (CVE-2019-0623) - An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system. (CVE-2019-0635) - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. (CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664) - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. (CVE-2019-0661) - An information disclosure vulnerability exists when the Human Interface Devices (HID) component improperly handles objects in memory. (CVE-2019-0600, CVE-2019-0601) - A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file. (CVE-2019-0613) - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. (CVE-2019-0621) - An information disclosure vulnerability exists when the win32k component improperly provides kernel information. (CVE-2019-0628) - An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. (CVE-2019-0676) - A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's. (CVE-2019-0657) - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. (CVE-2019-0606) - A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. (CVE-2019-0618, CVE-2019-0662) - An information vulnerability exists when Windows improperly discloses file information. (CVE-2019-0636) - A spoofing vulnerability exists when Microsoft browsers improperly handles specific redirects. (CVE-2019-0654) - A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server. (CVE-2019-0626) - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. (CVE-2019-0595, CVE-2019-0596, CVE-2019-0597, CVE-2019-0598, CVE-2019-0599, CVE-2019-0625) - An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory. (CVE-2019-0663) * Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts. * References: https://support.microsoft.com/en-us/help/4486564 https://support.microsoft.com/en-us/help/4486563 * Platforms Affected: Windows Server 2008 SP2 Windows Server 2008 x64 SP2 Windows 7 SP1 Windows 7 x64 SP1 Windows Server 2008 R2 SP1 Windows Server 2008 R2 x64 SP1 Windows 8.1 Windows Server 2012 Windows Server 2012 R2 Windows 10 Windows Server 2016 Windows Server 2019
Recommendation	Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin January 2019 Microsoft security update at https://support.microsoft.com/en-us/help/4486564 https://support.microsoft.com/en-us/help/4486563 https://support.microsoft.com/en-us/help/4487018 https://support.microsoft.com/en-us/help/4486993 https://support.microsoft.com/en-us/help/4487025 https://support.microsoft.com/en-us/help/4487028 -- OR -- Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com. Windows Update detects what version of Windows you are running and offers the appropriate patch.
Related URL	CVE-2019-0595,CVE-2019-0596,CVE-2019-0597,CVE-2019-0598,CVE-2019-0599,CVE-2019-0600,CVE-2019-0601,CVE-2019-0602,CVE-2019-0606,CVE-2019-0613 (CVE)
Related URL	(SecurityFocus)
Related URL	(ISS)